Systems and methods for enabling access to third party services via a service layer

ABSTRACT

An M2M Service Layer is expanded to access the services of third parties and exchange data with these third parties. The M2M Service Layer is then able to act as a proxy between M2M Devices and the third party services. The M2M Service Layer is able to present a single/consistent interface, or API, to the M2M Device and hide the details of the third party service provider from the M2M Device.

CROSS-REFERENCE TO RELATED APPLICATIONS

This application is a continuation of U.S. patent application Ser. No.17/153,992 filed Jan. 21, 2021, which is a continuation of U.S. patentapplication Ser. No. 15/511,794, filed Mar. 16, 2017, now U.S. Pat. No.10,931,762, which is a National Stage Application filed under 35 U.S.C.§ 371 of International Application No. PCT/US2015/050667, filed Sep. 17,2015, which claims priority to U.S. Provisional Patent Application No.62/051,561, filed Sep. 17, 2014, the disclosure of which is incorporatedherein by reference in its entirety.

BACKGROUND

Web Service (WS) is a method of implementing a software system designedto support interoperable interactions between computers over a network.WS provides a standard means of interoperation between softwareapplications running on a variety of platforms and frameworks. Moreprecisely, WS is a specific implementation technology of RemoteProcedure Call (RPC), which is a software operation paradigm where oneprogram can request a service from another program located in adifferent computer in a network. WSs are characterized by their greatinteroperability and extensibility, as well as their machine-readabledescriptions, thanks to the use of Extensible Markup Language (XML). WSscan be combined in a loosely coupled way to achieve complex operationssuch that programs providing simple services can interact with eachother to deliver sophisticated value-added services.

From a protocol stack perspective, Service Layers are typically layeredon top of existing network protocol stacks and provide value addedservices to client applications. Hence Service Layers are oftencategorized as ‘middleware’ services. For example, FIG. 1 is a diagramthat illustrates an exemplary Service Layer 102 layered in between an IPnetworking stack 104 and applications 106.

FIG. 2 is a diagram that illustrates an example deployment scenario of aService Layer instances within a network. Tn this example, the ServiceLayer instances are shown deployed on various network nodes (gatewaysand servers) and providing value-added services to network applications,device applications as well as to the network nodes themselves.

An Machine to Machine (M2M)/Internet of Things (IOT) Service Layer is anexample of one type of Service Layer specifically targeted towardsproviding value-added services for M2M/IoT type devices andapplications. Recently, several industry standards bodies (e.g. ETSIM2M, oneM2M) have been developing M2M/IoT Service Layers to address thechallenges associated with integration of M2M/IoT types of devices andapplications into deployments such as the Internet/Web, cellular,enterprise, and home network.

An M2M Service Layer can provide applications and devices access to acollection of M2M centric capabilities supported by the Service Layer. Afew examples include security, charging, data management, devicemanagement, discovery, provisioning, and connectivity management. Thesecapabilities are made available to applications via APIs which make useof message formats, resource structures and resource representationsdefined by the M2M Service Layer.

Another example of a Service Layer is the IP Multimedia Subsystem (IMS)Service Layer specifically targeted to providing multimedia services formobile network devices.

The purpose and goal of oneM2M is to develop technical specificationswhich address the need for a common M2M Service Layer that can bereadily embedded within various hardware and software, and relied uponto connect a wide variety of devices in the field with M2M applicationservers worldwide.

FIG. 3 is a diagram that illustrates the overall architecture of theoneM2M Service Layer 300. The oneM2M common services layer supports aset of Common Service Functions (CSFs) (i.e. service capabilities). Aninstantiation of a set of one or more particular types of CSFs isreferred to as a Common Services Entity (CSE) 302 and 304 which can behosted on different types of network nodes (e.g. infrastructure node,middle node, application-specific node).

Per the oneM2M RESTful architecture, CSFs are represented as a set of“resources”. A resource is a uniquely addressable entity in thearchitecture having a representation that can be manipulated via RESTfulmethods such as Create, Retrieve, Update, and Delete. These resourcesare made addressable using Universal Resource Identifiers (URIs). Aresource may contain child resource(s) and attribute(s). A childresource is a resource that has a containment relationship with a parentresource. The parent resource representation contains references to itschild resources(s). The lifetime of a child-resource is limited by theparent's resource lifetime. Each resource supports a set of “attributes”that store information about the resource.

FIG. 4 is a diagram that illustrates an M2M Service Architecture 400that augments the oneM2M Functional Architecture by specifying M2MServices provided to M2M Application and M2M Service Providers. TheService Exposure Component 402 exposes services to Application Entities(AEs) 404. The Network Service Utilization Component 406 consumesservices from the Network Service Entity (NSE) 408. The Remote ServiceExposure component 410 connects Services from different M2Menvironments.

SUMMARY

An M2M Service Layer is expanded to access the services of third partiesand exchange data with these third parties. The M2M Service Layer isthen able to act as a proxy between M2M Devices and the third partyservices. The M2M Service Layer is able to present a single/consistentinterface, or API, to the M2M Device and hide the details of the thirdparty service provider from the M2M Device.

By allowing devices to access more services and exchange data with moreplatforms, application and device developers are presented with morepossibilities in terms of what can be built with the internet of things.In other words, more information exchange will be possible, devices willbe able to access more services, and a wider range of services can becreated.

The methods described can also be applied to service layers that are notspecific to machine-to-machine communication or the internet of things.

Methods for M2M Service Layers to integrate value added services fromThird Party Service Providers are used through a proxy mechanism suchthat the M2M Service Layer clients do not need to know how tocommunicate with the Third Party Service.

The Third Party Service API can be specified, defined or provided to theM2M Service Layer.

Service Layer clients can discover the Third Party Services availablethrough the M2M Service Layer. It is not necessary that the ServiceLayer clients be made aware that these services arc external to the hostM2M Service Layer.

The Service Layer clients can request access to, register for access to,or be provisioned for access to the Third Party Services.

The Third Party Service can access the Service Layer in a mannerconsistent with the native protocol of the M2M Service Layer.

An M2M based Interface can be translated into the Third Party API,proxying the request to the Third Party Service, receiving the responsefrom the Third Party Service, and sending a native response to theoriginator of the request.

This Summary is provided to introduce a selection of concepts in asimplified form that are further described below in the DetailedDescription. This Summary is not intended to identify key features oressential features of the claimed subject matter, nor is it intended tobe used to limit the scope of the claimed subject matter. Furthermore,the claimed subject matter is not limited to limitations that solve anyor all disadvantages noted in any part of this disclosure.

BRIEF DESCRIPTION OF THE DRAWINGS

A more detailed understanding may be had from the following description,given by way of example in conjunction with accompanying drawingswherein:

FIG. 1 is a diagram that illustrates an exemplary Service Layer layeredin between an IP networking stack and applications.

FIG. 2 is a diagram that illustrates an example deployment scenario of aService Layer instances within a network.

FIG. 3 is a diagram that illustrates the overall architecture of theoneM2M Service Layer.

FIG. 4 is a diagram that illustrates an M2M Service Architecture thataugments the oneM2M Functional Architecture by specifying M2M Servicesprovided to M2M Application and M2M Service Providers.

FIG. 5 is a diagram that illustrates the use of out of bandcommunications to request third party services.

FIG. 6 is a diagram that illustrates a system that allows the M2MService Layer to access the services of third parties and exchange datawith third parties.

FIG. 7 is a diagram that summarizes steps to allow the Service Layerclients to access a Third Party Service.

FIGS. 8A, 8B, and 8C together form a flow diagram that shows a oneM2MResource-Oriented Architecture (RoA) Embodiment.

FIG. 9 is a diagram that illustrates a Service Access Enablement (SAE)component.

FIG. 10 is a diagram that illustrates a <service object> resource.

FIG. 11 is a diagram that illustrates a <service instance> object.

FIG. 12 is a diagram that illustrates a Service Access Enablementcomponent within the oneM2M Services Architecture as well as thedefinition of a new reference point, Mcs.

FIGS. 13A, 13B, and 13C together form a flow diagram that illustrates aMessage Queue Telemetry Transport (MQTT) Embodiment.

FIG. 14 is a diagram of a Graphical User Interface of one embodiment.

FIG. 15A is a diagram of an example machine-to machine (M2M), Internetof Things (IoT), or Web of Things (WoT) communication system in whichone or more disclosed embodiments may be implemented.

FIG. 15B is a system diagram of an example architecture that may be usedwithin the M2M/IoT communications system illustrated in FIG. 15A.

FIG. 15C is a system diagram of an example M2M/IoT terminal or gatewaydevice that may be used within the communications system illustrated inFIG. 15A.

FIG. 15D is a block diagram of an example computing system in whichaspects of the communication system of FIG. 15A may be embodied.

DETAILED DESCRIPTION OF ILLUSTRATIVE EMBODIMENTS

M2M Service Layers are being deployed with a requirement to supportdevices or sensors that may be constrained and applications that mayhave limits with respect to data rates, data consumption limits andcomputational complexities. Due to their constrained nature theseService Layer clients will need to perform as much processing aspossible external to the device or application. Clients will often relyon the service layer to perform processing. The M2M Service Layer maysupport some value added processing services natively; however ingeneral the M2M Service Layer is not likely to be able to support allpossible application specific services or functionalities that can beneeded or desired by deployed devices, sensors and applications. In thecase where the M2M Service Layer does not natively support the desiredservice or functionality, the Service Layer clients need to implementthose features themselves or request those services from Third PartyServices.

In the M2M standards, there is no support for requesting access to ThirdParty Services via the M2M Service Layer. Hence, the devices, sensorsand applications associated with the M2M Service Layer must instead useout of band communications procedures to request this service asdepicted in FIG. 5 . FIG. 5 is a diagram that shows the use of out ofband communications to request third party services.

An example deployment is shown in FIG. 5 where the “Sensors” 502 and“Applications” 504 are connected to one another via the M2M ServiceLayer 506 and communicate using the M2M Service Layer defined protocols.The example will be a security system.

A small security camera (the sensors 502 in FIG. 5 ) takes pictures andsends the images to the Service Layer 506 where they are stored. Inaddition to the raw images, the security system also provides thefollowing features:

1 Apply motion detection algorithms on the image and store the result inthe Service Layer.

2 Generate a SMS alert to a user's mobile device if motion is detected.

3 Provide compressed versions of the images to reduce bandwidthrequirements.

4 Provides facial recognition to identify the person in the image.

To implement this security system using the existing M2M Service Layers506, any of the following options can be implemented based on the systemanalysis and trade-offs:

1 Build the sensor 502 so that each of the desired features isimplemented on the device.

2 Build the sensor 502 so that it can request these features via ThirdParty Services 508.

3 Perform some of the desired features on the end user application.

4 Build the end user application so that it can request these featuresvia Third Party Services.

There are several problems of this approach (the numbered items in FIG.5 correspond to the list below):

1) M2M/IoT devices or sensors 502 are intended or expected to be veryconstrained devices. If those devices or sensors have to performcomputationally complex operations or implement another interface,besides the interface to the M2M Service Layer, to access Third PartyServices 508, it will increase the size, complexity and cost of thosedevices or sensors.2) End user applications 504, which may be constrained as well, may haveto interface with and coordinate responses from one or more Third PartyServices 508. This adds complexity for those applications.3) The Third Party services 508 will have to support many moreconnections from the devices, sensors and applications which can lead tocomplexity and scalability problems for the Third Party Service 508.Additionally a given Third Party Services 508 can be performing serviceson the same piece of data multiple times if multiple applicationsrequest the service on the same data. Multiple requests on the same datacan lead to poor quality of service as requests may have longer waittimes before getting a response because of the larger number of requestse.g. if multiple end user applications request compression of the sameimage.4) Devices, sensors 502 and applications 504 are required to supportmore API's to external services and these additional API's increaselikelihood that the device will require periodic software updates. Forexample, if a Third Party Service Provider makes a change to its API,this can require an update to all of the deployed devices, sensors andapplications.

FIG. 6 is a diagram that illustrates the use of a system that allows theM2M Service Layer 604 to access the services of third parties andexchange data with third parties 606. The M2M Service Layer 604 is thenable to act as a proxy between M2M Devices, such as the sensor 602 andapplication 608, and the third party services. The M2M Service Layer isable to present a single/consistent interface, or APT, to the M2M Deviceand hide the details of the third party service 606 from the M2M Device.

FIG. 6 illustrates how an example security system benefits from theseprocedures in a M2M deployment. The small security cameras 612 takepictures and send the images to the Service Layer 604 where it isstored. When each image arrives at the Service Layer 604, it is alsosent by the M2M Service Layer 604 to a Third Party Service 606 wheremotion detection is performed on this image and the result also storedin the Service Layer 604. In the event that the result indicates thatthere is motion, a SMS alert is signaled to a user's mobile device. Whenthe user application 608 retrieves the image, a compressed version ofthe original image is sent as the response (rather than the originalfull resolution image). The user application 608 also has access to theresults of facial recognition services used to identify the person inthe image.

By using the methods defined herein, a number of benefits are affordedto the various parties in this systems.

Device and sensor manufacturers are able to build sensors 602 dedicatedto the specific sensing function and not have to add additional hardwareand software capabilities to perform that additional processing providedby the Third Party Services 606. This directly leads to less complexity,smaller size, shorter schedules and reduced costs.

Device and sensor manufacturers are able access the Third Party Services606 using the existing M2M Service Layer 604 protocols and do not needto add additional hardware and/or software that may be required tosupport other web service protocols. This directly leads to lesscomplexity, smaller size, shorter schedules and reduced costs.

Device and sensor manufacturers are able to provide updates to thefeatures provided by third parties by changing configurations in the M2MService Layer 604, rather than using some type of device managementfunctionality. This directly leads to less complexity, smaller size,shorter schedules and reduced costs.

Applications 608 can provide more feature rich functions with much lesscomplexity by using the Third Party Services 606 available via the M2MService Layer 604. This will directly lead to better performance andmaintainability of the application.

Applications 608 do not need to be aware of the individual Third PartyService protocols in order to use the features available. This willdirectly lead to less complexity in the application.

Third Party Services 606 are able to provide their services to a largernumber of clients through fewer connections since the Service Layer 604is the ‘proxy’ for the Service Layer clients. This directly leads toreduced complexity, improved performance and better scalability.

Third Party Services can be advertised as built-in features of the M2MService Layer from the directory of services.

Device, sensor and application developers can use the directory ofservices feature to discover supported services, select services,perhaps request new services or even identify the need for new services.This directly leads to improved capabilities offered to all parties.

The M2M Service Layer 604 is able to provide more advanced serviceswithout the need to develop them internally. This directly leads toreduced complexity.

This disclosure also defines an embodiment for how these procedures canbe implemented in an oneM2M Service Layer to allow Service Layer clientsaccess to Third Party Services 606 via normal Service Layer APT calls.

Three main methods are defined:

Provisioning the M2M Service Layer 604 with the details of how to accessthe third Party Service 606.

Enabling the M2M Service Layer clients to discover these available ThirdParty Services 606.

Implementing a M2M Service Layer Interface that triggers the request tothe Third Party Service 606.

FIG. 7 is a diagram that summarizes steps to allow the Service Layerclients 602 to access the Third Party Service 606, step 1 is a methodfor the Third Party Service API and protocol to be known by the M2MService Layer. Once this information is available to the Service Layer,step 2 is a way for Service Layer clients (or their developers) todiscover information about these Third Party Services 606. A ServiceLayer client that wants to use the Third Party Service needs to setupthe usage parameters in a manner that is consistent with the existingService Layer protocols in step 3. At that point, when a Service Layerclient accesses the M2M Service Layer interface to the Third PartyService 606, in step 4, the Service Layer 604 translates or proxies therequest to the Third Party Service 606 in step 5, which includeshandling all of the communications necessary to get the output responsefrom the Third Party Service 606 and provide that response back to theoriginal requestor or other destination as defined by the M2M ServiceLayer or Service Layer client in step 6.

A service object that can be created for or by a Third Party Service606. The service objects are typically located in the Service Layer,e.g. in the oneM2M embodiment, the service objects are represented asnew resources. They can contain the details of what the Third PartyService offers and how to interface with the Third Party service. Themethod of actually representing a service object is implementationdependent. Some example implementations can be programming languageconstructs like Java or C++ classes or structures, database records, xmldocuments, or Service Layer resources.

Regardless of how it is implemented in a given Service Layer, a serviceobject is the set of information necessary to allow M2M Service Layerclients to discover, configure and use the Third Party Servicesdescribed by the object, as well as the methods or procedures performedon or by the object.

The description of the service object can be (but not necessarilylimited to being) grouped into in three types of information. Theservice object is defined initially here, and then the definition of theService Object is expanded upon as the methods of this disclosure aredescribed.

Service Object Information can include Third Party Service Information,Party Service Discovery and Access Information, and Service InterfaceInformation.

Third Party Service Information can contain the information needed tocommunicate between the Service Layer 604 and the Third Party Service606. This can include the description language used by the Third PartyService (such as WSDL) or other standard or non-standard interfacemethods. It can also contain the specification of a custom communicationprotocol. Steps 1 and 5 of FIG. 7 show this.

Third Party Service Discovery and Access Information can contain theinformation that the M2M Service Layer uses to advertise or announce theservice to the M2M Service Layer clients or entities. This can includegeneric high level descriptions of the features, costs of the features,the name of the Third Party Service provider, links to information onhow to use the service, etc. Additionally, this can contain the means torequest access to use these Third Party Services 606. Steps 1 and 2 ofFIG. 7 show this.

Service Interface Information can be specific to the M2M Service Layer.It describes how the M2M Service Layer clients should make requests orcalls that trigger the translation or proxy call to the Third PartyService 606 along with all of the parameters and inputs needed for theThird Party Service call. Steps 3, 4 and 6 of FIG. 7 show this.

This service object may be made directly available to Service Layerclients for direct use. Alternatively only portions of the ServiceObject can be made available, exposing only a ‘Service Layer’ compliantinterface.

The following sections describe the procedures performed on the serviceobject information.

Details of Provisioning the Third Party Interface. Web services 606 canhave any number of different protocols for accessing their availableservices. Through the methods described in this disclosure they are ableto provide a description of their interface in the description language,if available, corresponding to the web service protocol which theyalready use.

The Service Layer 604 can use this information to access the Third PartyService 606 on behalf of the Service Layer clients 608. The ServiceLayer 604 communicates with the Third Party Service 606 using theprotocol of the Third Party Service 606, thereby allowing the ThirdParty Service 606 to remain “unaware” of the Service Layer protocol usedby the originator of the request. Additional details for the ServiceObject are defined to store this information.

Service Object Third Party Service Information can have a service API.The Third Party Service API is the information that the M2M ServiceLayer needs in order to send a message to the Third Party Servicerequesting the specified service. This includes the call flows neededbetween the M2M Service Layer 604 and the Third Party Service 606. Alsoincluded is the addressing information (FQDN or IP address and port),transport protocols (UDP, TCP, etc), and message formats (XML, png,etc).

The methods for providing the Third Party Service information can have avariety of specific implementations. An example implementation can be aprovisioning step where the information is manually or in anon-automatic way entered into the Service Object database or storagedevice/procedure. Another example can be the development of an API wherea Service Description language can be used by the Third Party Service606 to define its interface. In this case the API can support any numberof protocol descriptions, such as WSDL shown in Example 1. Anotherexample can be a method where the M2M Service Layer initiates theretrieval of an available description of a Third Party Service 606.

Example 1—WSDL Document Structure

  <definitions>   <types>    definition of types   </types>   <message>   definition of a message....   </message>   <portType>    <operation>    definition of an operation    </operation>   </portType>   <binding>   definition of a binding....   </binding>   <service>    definition ofa service....   </service>   </definitions>

The following example 2 shows a sample WSDL document that can be parsedand mapped to native M2M Service Layer protocols.

Example 2—Temperature Conversion Service Description

<?xml version=“1.0” encoding=“utf-8”?> <wsdl:definitionsxmlns:tm=http://microsoft.com/wsdl/mime/textMatching/”xmlns:soapenc=http://schemas.xmlsoap.org/soap/encoding/”xmlns:mime=http://schemas.xmlsoap.org/wsdl/mime/”xmlns:tns=http://www.webserviceX.NET/” xmlns:soap=http://schemas.xmlsoap.org/wsdl/soap/”xmlns:s=http://www.w3.org/2001/XMLSchemaxmlns:soap12=“http://schemas.xmlsoap.org/wsdl/soap”12/”xmlns:http=http://schemas.xmlsoap.org/wsdl/http/xmlns:wsdl=“http://schemas.xmlsoap.org/wsdl/”targetNamespace=“http://www.webserviceX.NET/”>  <wsdl:types>   <s:schemaelementFormDefault=“qualified”   targetNamespace=“http://www.webserviceX.NET/”> <s:elementname=“ConvertTemp”>  <s:complexType>   <s: sequence>    <s:elementminOccurs=“1” maxOccurs=“1”     name=“Temperature” type=“s:double”/>   <s:element minOccurs=“1” maxOccurs=“1”     name=“FromUnit”type=“tns:TemperatureUnit”/>   <s:element minOccurs=“1” maxOccurs=“ 1”    name=“ToUnit” type=“tns:TemperatureUnit”/>  </s:sequence>   </s:complexType>   </s: element>   <s:simpleTypename=“TemperatureUnit”/>   <s:restriction base=“s:string”>    <s:enumeration value=“degreeCelsius”/>    <s: enumerationvalue=“degreeFahrenheit”/>    <5: enumeration value=“degreeRankine”/>   <s: enumeration value=“degreeReaumur”/>    <s: enumerationvalue=“kelvin”/>   </s:restriction>   </s:simpleType>   <s:elementname=“ConvertTempResponse”>   <s:complexType>    <s: sequence>   <s:element minOccurs=“1” maxOccurs=“ 1”      name=“ConvertTempResult”type=“s:double”/>    </s:sequence>   </s:complexType>   </s:element>  <s:element name=“double” type=“s:double”/>  <is:schema> </wsdl:types><wsdl:message name=“ConvertTempSoapTn”>    <wsdl:part name=“parameters”element=“tns:ConvertTemp”/> </wsdl:message> <wsdl:messagename=“ConvertTempSoapOut”>    <wsdl:part name=“parameters”    element=“tns:ConvertTempResponse”/> </wsdl:message> <wsdl:portTypename=“ConvertTemperatureSoap”>  <wsdl:operation name=“ConvertTemp”>   <wsdkinput message=“tns:ConvertTempSoapIn”/>   <wsdkoutputmessage=“tns:ConvertTempSoapOut”/>  </wsdl:operation> </wsdl:portType><wsdl:binding name=“ConvertTemperatureSoap”    type=“tns:ConvertTemperatureSoap”> <soap:binding    transport=“http://schemas.xmlsoap.org/soap/http”/> <wsdl:operationname=“ConvertTemp”>   <soap:operation    soapAction=“http://www.webserviceX.NET/ConvertTemp”    style=“document”/>   <wsdl:input>   <soap:body use=“literal”/>  </wsdl:input>  <wsdl:output>  <soap:body use=“literal”/> </wsdl:output>  </wsdl:operation> </wsdl:binding> <wsdl:servicename=“ConvertTemperature”>   <wsdl:port name=“ConvertTemperatureSoap”    binding=“tns:ConvertTemperatureSoap”>   <soap:address location=    “http://www.webservicex.net/ConvertTemperature.asmx”/>  </wsdl:port>   </wsdl:service> </wsdl:definitions>

The WSDL document in Example 2 describes an API to a service thatconverts temperatures from one unit of measurement to another. The WDSLdocument can be parsed to extract the following essential pieces ofinformation needed by the M2M Service Layer to map required APIparameters to corresponding parameters native to the M2M Service Layer.

A sample request from the M2M Service Layer 604 defined by this servicedescription document is shown in Example 3:

Example 3: Temperature Conversion Request

<soap:Envelope xmlns:soap=“http://www.w3.org/2003/05/soap-envelope” xmlns:web=“http://www.webserviceX.NET/”>  <soap:Headed>  <soap:Body>  <web:ConvertTemp>    <web:Temperature>40<web:Temperature>   <web:FromUnit>degreeCelsius<web:FromUnit>   <web:ToUnit>degreeFahrenheit<web:ToUnit>   <web:ConvertTemp> <soap:Body> </soap:Envelope>

An M2M Service can identify the three parameters in this request fromthe WSDL document shown in Example 3 from ConvertTemp data type. Thetype of mapping from these inputs to the M2M ServiceLayer types can bederived from the document, where the “web: Temperature” parameter isdefined as a “s: double” and the “web: FromUnit” and “web: ToUnit”parameters are defined as a choice of values from the set defined in“tns: TemperatureUnit”.

In addition to getting the description of how to access the Third PartyService 606, the Service Layer 604 gets the means for specifying thecredentials needed to access the Third Party Service 606. For example,the M2M Service Layer 604 may be able to secure credentials that allowall Service Layer clients 608 access to the Third Party Service 606using the credentials of the M2M Service Layer 604. In this case the M2MService Layer 604 may have established an agreement for billing for theuse of the services which may be passed on to the M2M Service Layerclients 608 or offered as a valued added service. Another example may besuch that the M2M Service Layer 608 client has its own credentials touse this service and needs to provide this information for each use ofthe service, such as all devices from a particular manufacturer use aspecific credential provided to the manufacturer by the Third PartyService provider. In this case billing can be outside the scope of theM2M Service Layer 604, other than data usage or other agreedarrangements.

Once the Third Party Services interface definitions are stored by theService Layer 604, there is a method to make these services known andaccessible to the Service Layer clients. The Service Layer 604 is ableto “advertise” these services to the Service Layer clients 608 and“describe” the Service Layer 604 defined interface that triggers arequest to the third party Service 606.

The Service Layer 604 provides a directory of services that ServiceLayer clients 608 can read to understand what services are available,and request details of how to use those services. Additional details forthe Service Object are defined to store this information.

Service Object third Party Service Discovery and Access Information canhave a Service Description that is a description of the serviceprovided. The content and format of this can have a variety of specificimplementations. For example, it can be an HTML description that ismeant to be viewed by developers or end users to describe an offeredservice during development or equipment/application setup. This caninclude any type of information related to features, cost, usagerequirements, etc. The service description information also includes amethod to define keys or indexes so the Service Layer clients canperform searches to find a particular type of search, for example

GET service?type=image_compression.

Using the information provided above, Service Layer Client developers isable to search for services that can add value to their own capabilitiesand request permissions to use that service through native Service Layerprotocols.

When the M2M Service Layer clients 608 want to use a Third Party Service606, the M2M Service Layer 604 uses the Service API information toproperly form the message or messages to the Third Party Service 606.Through the methods described in this disclosure the Service Layer 604defines the interface that allows the Service Layer clients 608 toaccess the Third Party Services 606 using protocols that are native tothe service layer.

Additional details for the Service Object are defined to store thisinformation. Service Object Third Party Service Interface Informationcan contain the Service Layer defined interface for Service layerclients to use to access the Third Party Service 606. This informationincludes how to specify input parameters, output parameters, accesscredentials, and any other information needed by the Third Party Service606. This information also specifies how to trigger the Service Layer604 to initiate or make the Third Party Service request on behalf of theService Layer client. The Service Layer 604 defines this interface byevaluating or parsing the Service API information and mapping each ofthe API parameters to a native Service Layer interface or property, e.g.a Third Party Service API that requires an image as an input parametermay be mapped to the URI of an image that the Third Party Service canretrieve. A M2M Service Layer application developer can use thisinformation to access the Third Party Service 606.

Using the details of how to interface with the Third Party service 606,the Service Layer 604 maps the native Service Layer objects or resourcesto the Third Party Service specified inputs to and sends the requestusing the web service protocol supported by the Third Party Service 606.The Service Layer 604 also handles the result or response from the ThirdParty Service 606 and maps it back to the appropriate native ServiceLayer response.

FIG. 8 is a flow diagram that shows a oneM2M RoA Embodiment. This figureshows one way that the methods and procedures described in thisdisclosure can be implemented in the oneM2M Architecture.

A oneM2M Service Object Provisioning Tool 802 can be a utility forprovisioning the Service Object defined in this embodiment. Thisapplication is a oneM2M application that supports sending a Web ServiceAPI and description to the oneM2M Service Layer. In this example, thediscovery of the Puny PNG Web Service 804 is done. It can be a servicefound via a web search, or it can be a custom implemented servicespecific to the Application Entities that use this service e.g. thesecurity camera manufacturer can host a web service for only its camerasto access. The oneM2M Service Object Provisioning Tool 802 cancommunicates with the CSE via Mca reference point.

In this example, the Puny PNG Web Service 804 is an active web servicethat provides limited free compress on png formatted images andadditional services for a subscription fee. The Puny PNG Web Service 804can require the use of an Access Key that you get by creating anaccount. The Puny PNG Web Service 804 can communicate with the CSE 806via protocols native to the Third Party Service. This can be a newreference point in the oneM2M Architecture. This new reference point,Mcs, is shown in FIG. 12 .

CSE 806 is an instance of an oneM2M Common Services Entity that supportsthe methods defined in this disclosure and this embodiment.

Application Entity #1 808 is a device or application that places imagesinto the oneM2M CSE 806. In this example it performs the service objectdiscovery and setup procedures. This step can have been done by aseparate entity, such as a setup application that often accompanieshardware or devices. Application Entity #1 808 can be a remote securitycamera that takes pictures at a configured rate. The Application Entity#1 808 can communicate with the CSE 806 via Mca reference point.

Application Entity #2 810 can be an application that retrievescompressed versions of the images provided by Application Entity #1 808.Application Entity #2 810 can be a web based application thatperiodically gets the latest image from the oneM2M CSE 806. ApplicationEntity #2 810 can communicates with the CSE 806 via Mca reference point.

In FIG. 8 , the methods and procedures described in this disclosure areshown for the actors using the oneM2M Service Layer Architecture. Eachof the main messages is annotated with a superscript that corresponds tothe detailed description of that particular message.

In step 1 of FIG. 8 , the Service Object provisioning tool 802 createsan instance of the Service Object resource and for the PunyPNG webservice 804. The create primitive includes the Service API informationas well as the Service Description information.

In this example, Service Credentials are not provisioned to the servicelayer, which requires Service Layer clients to request their own API KEYusing the Third Party Service defined procedures. This is a deploymentdecision between the Service Layer and the Third Party Service. Notethat in a different deployment option, the oneM2M Service Layer may havean arrangement with the Third Party Service that allows the ServiceLayer to use a single key for all clients. This can slightly change someof the results shown below, but the process does not change.

Method: CREATE /csebase/punyPngServiceObject Payload:  <service Objectid=“punyPngService”>   <description>    <body>     <h1>punypng</h1>    <h2>     Image Compressor for Designers and     Developers     </h2>    <h2>Supports: JPG, GIF and PNG. </h2>     <h2>Go to PunyPNG.com torequest an API     Key</h2>     </body>   </description>   <serviceApi>  <request>    http://www.punypng.com/api/optimize?img=image.   png&key= API KEY   </request>   <response>    {“original size”:value,“optimized size”:value, “opti    mized_url”:url, “group_id ”:null,“savings_percent”: v    alue, “savings_bytes”:value}   </response>  <request>    “optimized_url”:url   </request>   <response>   {content}   </response>  </serviceApi > </serviceObject>

The oneM2M Service Layer analyzes and maps the service API provided inthe request to a <serviceInterface> resource in the Service Layer. Themapping process can be done using web service description languages ormanual configuration at the service layer. The example Request/Responsepairs can generate the following service layer information:

Request 1 url: http://www.punypng.com/api/optimize

Request 1 parameter: img=image.png

Request 1 parameter: key=API KEY

Response 1 parameter: “original size”: value

Response 1 parameter: “optimized size”: value

Response 1 parameter: “optimized_url”: url←This url is used in Request 2

Response 1 parameter: “group_id”: null

Response 1 parameter: “savings_percent”: value

Response 1 parameter: “savings_bytes”: value

Response 1 parameter: “original size”: value

Request 2 url: “optimized_url”: url←This url came from response 1

Response 2: “content”: value

In this Third Party Service API, there are 2 Request/Response pairs thatgenerate 2 input parameters and 6 output parameters that get mapped tothe Service Layer interface. An additional input parameter is specifiedby the Service Layer to allow configuration of which operation cantrigger the service.

At this point the Service Layer has a Service Object instance for thisThird Party Service ready for use by Service Layer clients.

In step 2 of FIG. 8 , the Service Layer client discovers a publishedservice. The application developer discovers Services that perform imagecompression using the Service Layer discovery procedures. The result ofthe discovery request includes URIs of the services that perform thedesired feature while the second request gets the description of theservice. It can be displayed in an HTML viewer as:

PunyPNG

Image Compressor for Designers and Developers

Supports: JPG, GIF and PNG.

Max 150 KB each, up to 15 files

Go to PunyPNG.com to request an API Key

In step 3 of FIG. 8 , the Service Layer Client requests access to aPublished Service. Once the Service Layer client finds a service thatmeets its needs, the client requests access to the Published Service. Inthis example embodiment, the oneM2M Service Layer allows READ access tothis resource so that all clients have access if they implement theproper interface, as defined. The Service Layer client retrieves aninterface description that specifies how the Third Party Service can beaccessed.

<servicelnterface>  <inputs>   <input Type=“container”>img</input>  <input Type=“name value”>key</input>   <triggerOperation=“operation”/>  </inputs>  <outputs>   <output  Type=“container ”> compressed img</output>   <outputType=“container”>original size</output>   <outputType=“container”>optimizedsize</output>   <outputType=“container”>savings_percent</output>   <output Type=“container ”>savings bytes</output>   <output Type=“container”>original size</output> </outputs>  <description>   There are 3 inputs: instance, value, andtriggering must   contain the URI to a container resource.   Value isthe KEY to use this service.   Trigger is the action on the first inputthat will initiate   the service. There are 6 outputs: compressed img is  Mandatory, the others are Optional. Each output must   contain the URIto a container resource where a   content resource will be created withthe indicated   content.  </description> </servicelnterface>

In step 4 of FIG. 8 , Service Layer Client sets up usage for the ThirdParty Service. Using the information from the interface description, theApplication entity creates the <serviceInstance> resource with theparameters needed to implement the interface defined by the oneM2MService Layer. In this example the Service Layer Client needs to specifythe location (a container) of the images that can be compressed by theThird Party Service. Also needed are the Service Layer Client's API KEYand a location for the results of the Third Party Service, in this casethe compressed images.

<serviceInstance id=“punyPngService ”> <serviceObjectUri>/csebase/punyPngServiceObject</serviceObjectUri> <inputs>   <input param=“container”>/csebase/myPictures <input>  <input param=“key”>AKUIFYY1GBDKJRB<input>   <inputparam=“trigger”>CREATED<input> </inputs>  <outputs>   <outputparam=“compressed_img”>/csebase/myPicturesPuny<output>   <outputparam=“optimized_size ”>/csebase/myPicturesPuny<output>   </outputs></serviceInstance>

In step 5 of FIG. 8 , Service Layer Client triggers use of Third PartyService. The Application Entity #1, in our example, CREATES imagesat/cesbase/myPictures. The target URI of the image along with theOPERATION on the target URI is the trigger for starting the ServiceLayer procedures to access the Third Party Service. In this example whena resource is successfully CREATED in/cesbase/myPictures the ServiceLayer can begin the process.

In step 6 of FIG. 8 , Service Layer proxies user data to the Third PartyService. The <serviceInstance> resource created by the Service LayerClient, points to the original <serviceObject> resource. The serviceAPIprovided in the CREATE <serviceObject> (step 1) specifies the contentand format of web service request. The Service Layer performs thespecified sequence of requests and responses using the data provided inthe <serviceInstance> resource. At this time, the Service Layer canprovide the web service with a charging identifier that the web servicecan use to identify the service layer and/or service client who isaccessing the service.

The Service Layer places the result(s) into the locations specified bythe Service Layer Client's <serviceInstance>. Optionally, the servicelayer can send a notification or a response message to the service layerclient to let it know that the results are ready. (This option is notshown in the figure above).

In step 7 of FIG. 8 , Service Layer Clients have access to the result ofthe Third Party Service. Once the Service Layer places the results intothe specified output URI, other clients can have access to the result.In this example, AE #2 can RETRIEVE a compressed image instead of theoriginal image.

It is understood that the entities performing the steps illustrated inFIG. 8 are logical entities that may be implemented in the form ofsoftware (i.e., computer-executable instructions) stored in a memory of,and executing on a processor of, a device, server, or other computersystem such as one of those illustrated in FIG. 15C or 15D (our twoenvironment figures). That is, the method(s) illustrated in FIG. 8 maybe implemented in the form of software (i.e., computer-executableinstructions) stored in a memory of a computing device, such as forexample the device or computer system illustrated in FIGS. 15C or 15D,which computer executable instructions, when executed by a processor ofthe computing device, perform the steps illustrated in FIG. 8 .

This embodiment in the oneM2M Service Layer defines two new resourcedefinitions: <serviceObject> and <serviceInstance>.

The functions proposed in this paper can be implemented in a newlydefined CSF embodiment as an addition to the existing oneM2M functionalarchitecture. FIG. 9 is a diagram that illustrates the Service AccessEnablement (SAE) 902, a new CSF in the CSE 904.

FIG. 10 is a diagram that illustrates a <service object> resource 1002.The <service object> resource 1002 represents a container for storingthe interface definition to Third Party Services to the oneM2M ServiceLayer. It is also used to provide a description of the service toService Layer clients and the interface to setup and access the ThirdParty Service.

FIG. 11 is a diagram that shows a <service instance> object 1102. The<service instance> resource 1102 represents a container for storing theservice interface information. This resource is created by Service LayerClients that want to use a Third Party Service defined in<serviceObject> resources 1102. There is an attribute 1104 that links tothe <serviceObject> and attributes for each of the inputs and outputsthat have been ‘mapped’ by the Service Layer. The Service Layer can usethese inputs as parameters to the Third Party Service request(s). TheService Layer can also use the outputs specified in this resource forthe location to store results of the Third Party Service.

The ideas and procedures discussed above for a oneM2M RoA embodiment mayalso be implemented in a oneM2M Service Oriented Architecture (SoA).

FIG. 12 is a diagram that illustrates a Service Access Enablementcomponent 1202 within the oneM2M Services Architecture 1200 as well asthe definition of a new reference point, Mcs. The resources are similarto those in FIG. 9 .

FIG. 13 is a flow diagram of a Message Queue Telemetry Transport (MQTT)Embodiment. MQTT is a publish-subscribe based “light weight” messagingprotocol for use on top of the TCPIP protocol. The Publish-Subscribemessaging pattern uses a MQTT broker that is responsible fordistributing messages to interested clients based on the topic of amessage. This embodiment shows one way that the methods and proceduresdescribed in this disclosure can be implemented using a MQTTArchitecture. The embodiment is illustrated with the following examplescenario.

MQTT Broker 1302 is an instance of an oneM2M Common Services Entity thatsupports the methods defined in this disclosure and this embodiment.

The basic MQTT protocol support message delivery. MQTT Broker Extensionsof the basic protocol requires an implementation that can support custommodifications, such as HiveMQ. A Service Object Extension 1306 is abroker extension that supports receiving a Web Service API anddescription. Service Object Extension 1306 can receive publishedmessages with a defined topic pattern and perform the Service Layerfunctions related to the Service

Topic Directory Extension 1310 is a broker extension that supportsdiscovery of Service Object topics. This can be generalized to supportdiscovery of other topics as well since that is not a feature of thebasic MQTT protocol.

Puny PNG Web Service 1312 is an active web service that provides limitedfree compress on png formatted images and additional services for asubscription fee. The Puny PNG Web Service 1312 requires the use of anAccess Key that you get by creating an account. The Puny PNG Web Service1312 communicates with the MQTT Broker Service Object extension viaprotocols native to the Third Party Service.

Service Object Provisioning Tool 1314 is an application that supportssending a Web Service API and description to the MQTT Broker. TheService Object Provisioning Tool 1314 can be a utility for provisioningthe Service Object defined in this embodiment. In this embodiment, thediscovery of the Puny PNG Web Service occurs out of the scope of thisdisclosure. It can be a service found via a web search, or it can be acustom implemented service specific to the Application Entities that usethis service e.g. the security camera manufacturer can host a webservice for only its cameras to access.

MQTT Client Sensor 1316 is a device or application that places imagesinto the MQTT Broker. In this example it performs the service objectdiscovery and setup procedures. This step can have been done by aseparate entity, such as a setup application that often accompanieshardware or devices. The MQTT Client Sensor 1316 can be a remotesecurity camera that takes pictures at a configured rate.

MQTT Client App 1318 is an application that subscribes to compressedversions of the images provided by MQTT Client Sensor.

In FIG. 13 , the methods and procedures described in this disclosure areshown for the actors using the MQTT Broker 1302.

Step 1 of FIG. 13 is a Provision/Publish/Configure Third Party Servicestep. The Service Object provisioning tool 1314 creates an instance ofthe Service Object for the PunyPNG web service 1312. The PUB topic isused by the MQTT broker extension 1306 to identify this as a serviceobject. The message payload includes the Service API information as wellas the Service Description information. In this example, ServiceCredentials are not provisioned to the service layer, which requiresService Layer clients to request their own API KEY using the Third PartyService defined procedures. This is a deployment decision between theService Layer and the Third Party Service.

In this embodiment the convention for the topics are:serviceobject<third_party_service_name>.<service_description>. Thisconvention can be different.

Method: PUB serviceobjectpunyPngServiceObjecting_compression Payload: <service Object id=“punyPngService”>   <description>    <body>    <h1>punypng</h1>     <h2>     Image Compressor for Designers andDevelopers     </h2>     <h2>Supports: JPG, GIF and PNG. </h2>    <h2>Go to PunyPNG.com to request an API    Key</h2>    </body>  </description>   <serviceApi>    <request>    http://www.punypng.com/api/optimize?img=image.     png&key= API KEY   </request>    <response>     {“original size ”:value, “optimized_size”:value, “opti     mized_url”: url, “group _id”: null,     “savings_percent”: v     alue, “savings_bytes ”: value}    </response>   <request>     “optimized_url ”: url    </request>    <response>    {Content}    </response>   </ serviceApi>  </serviceObject>

The MQTT Service Object Extension 1314 intercepts the published messagesthat match the specified topic convention, in this case all messagescontaining “serviceobject” in the topic name.

The MQTT Service Object Extension 1314 analyzes and maps the service APIprovided in the request to payload format and topic naming convention asdescribed in section

The mapping process can be done using web service description languagesor manual configuration at the service layer. The exampleRequest/Response pairs can generate the following service layerinformation:

Request 1 url: http://www.punypng.com/api/optimize

Request 1 parameter: img=image.png

Request 1 parameter: key=API KEY

Response 1 parameter: “original_size”: value

Response 1 parameter: “optimized_size”: value

Response 1 parameter: “optimized_url”: url←This url is used in Request 2

Response 1 parameter: “group_id”: null

Response 1 parameter: “savings_percent”: value

Response 1 parameter: “savings_bytes”: value

Response 1 parameter: “original_size”: value

Request 2 url: “optimized url”: url←This url came from response 1

Response 2: “content”: value

In this Third Party Service API, there are 2 Request/Response pairs thatgenerate 2 input parameters and 6 output parameters that get mapped tothe MQTT topic convention.

At this point the MQTT Service Object extension 1306 has a ServiceObject instance for this Third Party Service ready for use by ServiceLayer clients.

In Step 2 of FIG. 13 , the Service Layer client discovers the publishedservice. The application discovers Services that perform imagecompression using the MQTT Topic Discovery extension 1306. The TopicDiscovery extension 1306 is triggered by prepending the topic token“discover” to the beginning of the SUB message. The result of thediscovery request includes topics of the services that match the desiredfeature.

The application optionally requests descriptions of the services thatare returned. An example description can be displayed in an HTML vieweras:

PunyPNG

Image Compressor for Designers and Developers

Supports: JPG, GIF and PNG.

Max 150 KB each, up to 15 files

Go to PunyPNG.com to request an API Key

In step 3 of FIG. 13 , the Service Layer Client 1316 requests access toa Published Service. Once the MQTT client 1316 finds a service thatmeets its needs, the client requests access to the Published Service. Inthis example embodiment, the Service Layer client 1316 retrieves aninterface description that specifies how the Third Party Service can beaccessed.

  <serviceInterface>    <topics>     <inputType=“required”>serviceobject</input>     <inputType=“required”>punyPngService</input>     <inputType=“outputSize”>param1</input>     <inputType=“API_KEY”>param2</input>     <input Type=“output topics”>*</input>   </topics>    <payload>     <input Type=“png”>image</input>   </payload>   </serviceInterface>

In step 4 of FIG. 13 , Service Layer Client 1316 sets up usage for theThird Party Service. Using the information from the interfacedescription, the MQTT Client Sensor creates a message that is publishedto the topics defined in the Service interface. In this example it canbe:

serviceobject.punyPngService.256.AKU1FYY1GBDKJRB.myHouse.frontdoor

Where

“serviceobject” and “punyPngService” are two required topics

“256” is the outputsize parameter

“AKUIFYY1GBDKJRB” is the API KEY parameter

“myHousc.frontdoor” arc the output topics

And the payload of this message must be an image in “png” format.

In step 5 of FIG. 13 , the Service Layer Client 1316 triggers use ofThird Party Service. The MQTT Client Sensor in our example publishes andimage according to the format described above.

In step 6 of FIG. 13 , Service Layer proxies user data to a Third PartyService. The “serviceobject” topic is used to direct this message to theService Object Extension. The “punyPngService” topic is used to find theService Object API for the Third Party Service. The parameters in therest of the topic name are mapped to the parameters required by theThird Party Service API. The Service Object extension performs thespecified sequence of requests and responses using the data provided inthe published message. The Service Object publishes the result to the“output topics”.

In step 7 of FIG. 13 , Service Layer Clients 1616 have access to theresult of the Third Party Service. A Client App that wishes to receivethese topics can subscribe to “output topics” to receive the compressedimages that came from the Third Party Service.

It is understood that the entities performing the steps illustrated inFIG. 13 are logical entities that may be implemented in the form ofsoftware (i.e., computer-executable instructions) stored in a memory of,and executing on a processor of, a device, server, or other computersystem such as one of those illustrated in FIG. 15C or 15D (our twoenvironment figures). That is, the method(s) illustrated in FIG. 13 maybe implemented in the form of software (i.e., computer-executableinstructions) stored in a memory of a computing device, such as forexample the device or computer system illustrated in FIGS. 15C or 15D,which computer executable instructions, when executed by a processor ofthe computing device, perform the steps illustrated in FIG. 13 .

Interfaces, such as Graphical User Interfaces (GUIs), can be used toassist user to control and/or configure functionalities related toenabling access to third party services via the service layer. GUIs cansupport third party services defining how to specify the API of thethird party service in the corresponding M2M SL native protocol, supportdiscovery of third party services, provide descriptions of the services,and allow for requests for access to the services. FIG. 14 is a diagramthat illustrates exemplary interfaces 1402, 1404 and 1406. Interface1402 allows for users to input a description or additional informationabout a provided service. Interface 1404 allows a user to input arequest API and indicate an expected response. Interface 1406 allows fora search for third party services. It is to be understood thatinterfaces 1402, 1404 and 1406 can be produced using displays such asthose shown in FIGS. 15C-D described below.

Example M2M/IoT/WoT Communication System

FIG. 15A is a diagram of an example machine-to machine (M2M), Internetof Things (IoT), or Web of Things (WoT) communication system 10 in whichone or more disclosed embodiments may be implemented. Generally, M2Mtechnologies provide building blocks for the IoT/WoT, and any M2Mdevice, M2M gateway, M2M server, or M2M service platform may be acomponent or node of the IoT/WoT as well as an IoT/WoT service layer,etc. Communication system 10 can be used to implement functionality ofthe disclosed embodiments and can include functionality and logicalentities such as external services 606, logical entities for sensor 602,M2M service layer 604, application 608, CSE 806, web service 804 and1312, oneM2M service object provisioning tool 802, Service AccessEnablement 902, Service Component Service Access Enablement 1202, MQTTclient sensor 1316, Service Object MQTT extension 1306, MQTT broker1302, topic directory MQTT extension 1310, MQTT client application 1318,and service object provisioning tool 1314 as well as logical entities toproduce interfaces such as interfaces 1402, 1404 and 1406.

As shown in FIG. 15A, the M2M/IoT/WoT communication system 10 includes acommunication network 12. The communication network 12 may be a fixednetwork (e.g., Ethernet, Fiber, ISDN, PLC, or the like) or a wirelessnetwork (e.g., WLAN, cellular, or the like) or a network ofheterogeneous networks. For example, the communication network 12 may becomprised of multiple access networks that provide content such asvoice, data, video, messaging, broadcast, or the like to multiple users.For example, the communication network 12 may employ one or more channelaccess methods, such as code division multiple access (CDMA), timedivision multiple access (TDMA), frequency division multiple access(FDMA), orthogonal FDMA (OFDMA), single-carrier FDMA (SC-FDMA), and thelike. Further, the communication network 12 may comprise other networkssuch as a core network, the Internet, a sensor network, an industrialcontrol network, a personal area network, a fused personal network, asatellite network, a home network, or an enterprise network for example.

As shown in FIG. 15A, the M2M/IoT/WoT communication system 10 mayinclude the Infrastructure Domain and the Field Domain. TheInfrastructure Domain refers to the network side of the end-to-end M2Mdeployment, and the Field Domain refers to the area networks, usuallybehind an M2M gateway. The Field Domain and Infrastructure Domain mayboth comprise a variety of different network nodes (e.g., servers,gateways, device, and the like). For example, the Field Domain mayinclude M2M gateways 14 and terminal devices 18. It will be appreciatedthat any number of M2M gateway devices 14 and M2M terminal devices 18may be included in the M2M/IoT/WoT communication system 10 as desired.Each of the M2M gateway devices 14 and M2M terminal devices 18 areconfigured to transmit and receive signals, using communicationscircuitry, via the communication network 12 or direct radio link. A M2Mgateway 14 allows wireless M2M devices (e.g. cellular and non-cellular)as well as fixed network M2M devices (e.g., PLC) to communicate eitherthrough operator networks, such as the communication network 12 ordirect radio link. For example, the M2M terminal devices 18 may collectdata and send the data, via the communication network 12 or direct radiolink, to an M2M application 20 or other M2M devices 18. The M2M terminaldevices 18 may also receive data from the M2M application 20 or an M2Mterminal device 18. Further, data and signals may be sent to andreceived from the M2M application 20 via an M2M service layer 22, asdescribed below. M2M terminal devices 18 and gateways 14 may communicatevia various networks including, cellular, WLAN, WPAN (e.g., Zigbee,6LoWPAN, Bluetooth), direct radio link, and wireline for example.

Exemplary M2M terminal devices 18 include, but are not limited to,tablets, smart phones, medical devices, temperature and weathermonitors, connected cars, smart meters, game consoles, personal digitalassistants, health and fitness monitors, lights, thermostats,appliances, garage doors and other actuator-based devices, securitydevices, and smart outlets.

Referring to FIG. 15B, the illustrated M2M service layer 22 in the fielddomain provides services for the M2M application 20, M2M gateway devices14, and M2M terminal devices 18 and the communication network 12.Communication network 12 can be used to implement functionality of thedisclosed embodiments and can include functionality and logical entitiessuch as external services 606, logical entities for sensor 602, M2Mservice layer 604, application 608, CSE 806, web service 804 and 1312,oneM2M service object provisioning tool 802, Service Access Enablement902, Service Component Service Access Enablement 1202, MQTT clientsensor 1316, Service Object MQTT extension 1306, MQTT broker 1302, topicdirectory MQTT extension 1310, MQTT client application 1318, and serviceobject provisioning tool 1314 as well as logical entities to produceinterfaces such as interfaces 1402, 1404 and 1406. The M2M service layer22 may be implemented by one or more servers, computers, devices,virtual machines (e.g. cloud/storage farms, etc.) or the like, includingfor example the devices illustrated in FIGS. 15C and 15D describedbelow. It will be understood that the M2M service layer 22 maycommunicate with any number of M2M applications, M2M gateways 14, M2Mterminal devices 18, and communication networks 12 as desired. The M2Mservice layer 22 may be implemented by one or more nodes of the network,which may comprises servers, computers, devices, or the like. The M2Mservice layer 22 provides service capabilities that apply to M2Mterminal devices 18, M2M gateways 14, and M2M applications 20. Thefunctions of the M2M service layer 22 may be implemented in a variety ofways, for example as a web server, in the cellular core network, in thecloud, etc.

Similar to the illustrated M2M service layer 22, there is the M2Mservice layer 22′ in the Infrastructure Domain. M2M service layer 22′provides services for the M2M application 20′ and the underlyingcommunication network 12′ in the infrastructure domain. M2M servicelayer 22′ also provides services for the M2M gateways 14 and M2Mterminal devices 18 in the field domain. It will be understood that theM2M service layer 22′ may communicate with any number of M2Mapplications, M2M gateways and M2M devices. The M2M service layer 22′may interact with a service layer by a different service provider. TheM2M service layer 22′ by one or more nodes of the network, which maycomprises servers, computers, devices, virtual machines (e.g., cloudcomputing/storage farms, etc.) or the like.

Referring also to FIG. 15B, the M2M service layers 22 and 22′ provide acore set of service delivery capabilities that diverse applications andverticals can leverage. These service capabilities enable M2Mapplications 20 and 20′ to interact with devices and perform functionssuch as data collection, data analysis, device management, security,billing, service/device discovery etc. Essentially, these servicecapabilities free the applications of the burden of implementing thesefunctionalities, thus simplifying application development and reducingcost and time to market. The service layers 22 and 22′ also enable M2Mapplications 20 and 20′ to communicate through various networks 12 and12′ in connection with the services that the service layers 22 and 22′provide.

The methods of the present application may be implemented as part of aservice layer 22 and 22′. The service layer 22 and 22′ is a softwaremiddleware layer that supports value-added service capabilities througha set of Application Programming Interfaces (APIs) and underlyingnetworking interfaces. Both ETSI M2M and oneM2M use a service layer thatmay contain the connection methods of the present application. ETSIM2M's service layer is referred to as the Service Capability Layer(SCL). The SCL may be implemented within an M2M device (where it isreferred to as a device SCL (DSCL)), a gateway (where it is referred toas a gateway SCL (GSCL)) and/or a network node (where it is referred toas a network SCL (NSCL)). The oneM2M service layer supports a set ofCommon Service Functions (CSFs) (i.e. service capabilities). Aninstantiation of a set of one or more particular types of CSFs isreferred to as a Common Services Entity (CSE) which can be hosted ondifferent types of network nodes (e.g. infrastructure node, middle node,application-specific node). Further, connection methods of the presentapplication can implemented as part of an M2M network that uses aService Oriented Architecture (SOA) and/or a resource-orientedarchitecture (ROA) to access services such as the connection methods ofthe present application.

In some embodiments, M2M applications 20 and 20′ may be used inconjunction with the disclosed systems and methods. The M2M applications20 and 20′ may include the applications that interact with the UE orgateway and may also be used in conjunction with other disclosed systemsand methods.

In one embodiment, the logical entities such as external services 606,logical entities for sensor 602, M2M service layer 604, application 608,CSE 806, web service 804 and 1312, oneM2M service object provisioningtool 802, Service Access Enablement 902, Service Component ServiceAccess Enablement 1202, MQTT client sensor 1316, Service Object MQTTextension 1306, MQTT broker 1302, topic directory MQTT extension 1310,MQTT client application 1318, and service object provisioning tool 1314as well as logical entities to produce interfaces such as interfaces1402, 1404 and 1406 may be hosted within a M2M service layer instancehosted by an M2M node, such as an M2M server, M2M gateway, or M2Mdevice, as shown in FIG. 15B. For example, the logical entities such asexternal services 606, logical entities for sensor 602, M2M servicelayer 604, application 608, CSE 806, web service 804 and 1312, oneM2Mservice object provisioning tool 802, Service Access Enablement 902,Service Component Service Access Enablement 1202, MQTT client sensor1316, Service Object MQTT extension 1306, MQTT broker 1302, topicdirectory MQTT extension 1310, MQTT client application 1318, and serviceobject provisioning tool 1314 as well as logical entities to produceinterfaces such as interfaces 1402, 1404 and 1406 may comprise anindividual service capability within the M2M service layer instance oras a sub-function within an existing service capability.

The M2M applications 20 and 20′ may include applications in variousindustries such as, without limitation, transportation, health andwellness, connected home, energy management, asset tracking, andsecurity and surveillance. As mentioned above, the M2M service layer,running across the devices, gateways, servers and other nodes of thesystem, supports functions such as, for example, data collection, devicemanagement, security, billing, location tracking/geofencing,device/service discovery, and legacy systems integration, and providesthese functions as services to the M2M applications 20 and 20′.

Generally, the service layers 22 and 22′ define a software middlewarelayer that supports value-added service capabilities through a set ofApplication Programming Interfaces (APIs) and underlying networkinginterfaces. Both the ETSI M2M and oneM2M architectures define a servicelayer. ETSI M2M′s service layer is referred to as the Service CapabilityLayer (SCL). The SCL may be implemented in a variety of different nodesof the ETSI M2M architecture. For example, an instance of the servicelayer may be implemented within an M2M device (where it is referred toas a device SCL (DSCL)), a gateway (where it is referred to as a gatewaySCL (GSCL)) and/or a network node (where it is referred to as a networkSCL (NSCL)). The oneM2M service layer supports a set of Common ServiceFunctions (CSFs) (i.e., service capabilities). An instantiation of a setof one or more particular types of CSFs is referred to as a CommonServices Entity (CSE) which can be hosted on different types of networknodes (e.g. infrastructure node, middle node, application-specificnode). The Third Generation Partnership Project (3GPP) has also definedan architecture for machine-type communications (MTC). In thatarchitecture, the service layer, and the service capabilities itprovides, arc implemented as part of a Service Capability Server (SCS).Whether embodied in a DSCL, GSCL, or NSCL of the ETSI M2M architecture,in a Service Capability Server (SCS) of the 3GPP MTC architecture, in aCSF or CSE of the oneM2M architecture, or in some other node of anetwork, an instance of the service layer may be implemented as alogical entity (e.g., software, computer-executable instructions, andthe like) executing either on one or more standalone nodes in thenetwork, including servers, computers, and other computing devices ornodes, or as part of one or more existing nodes. As an example, aninstance of a service layer or component thereof may be implemented inthe form of software running on a network node (e.g., server, computer,gateway, device or the like) having the general architecture illustratedin FIG. 15C or FIG. 15D described below.

Further, logical entities such as external services 606, logicalentities for sensor 602, M2M service layer 604, application 608, CSE806, web service 804 and 1312, oneM2M service object provisioning tool802, Service Access Enablement 902, Service Component Service AccessEnablement 1202, MQTT client sensor 1316, Service Object MQTT extension1306, MQTT broker 1302, topic directory MQTT extension 1310, MQTT clientapplication 1318, and service object provisioning tool 1314 as well aslogical entities to produce interfaces such as interfaces 1402, 1404 and1406 can implemented as part of an M2M network that uses a ServiceOriented Architecture (SOA) and/or a Resource-Oriented Architecture(ROA) to access services of the present application.

FIG. 15C is a block diagram of an example hardware/software architectureof a M2M network node 30, such as an M2M device 18, an M2M gateway 14,an M2M server, or the like. The node 30 can execute or include logicalentities such as external services 606, logical entities for sensor 602,M2M service layer 604, application 608, CSE 806, web service 804 and1312, oneM2M service object provisioning tool 802, Service AccessEnablement 902, Service Component Service Access Enablement 1202, MQTTclient sensor 1316, Service Object MQTT extension 1306, MQTT broker1302, topic directory MQTT extension 1310, MQTT client application 1318,and service object provisioning tool 1314 as well as logical entities toproduce interfaces such as interfaces 1402, 1404 and 1406. The device 30can be part of an M2M network as shown in FIG. 15A-B or part of anon-M2M network. As shown in FIG. 15C, the M2M node 30 may include aprocessor 32, non-removable memory 44, removable memory 46, aspeaker/microphone 38, a keypad 40, a display, touchpad, and/orindicators 42, a power source 48, a global positioning system (GPS)chipset 50, and other peripherals 52. The node 30 may also includecommunication circuitry, such as a transceiver 34 and a transmit/receiveelement 36. It will be appreciated that the M2M node 30 may include anysub-combination of the foregoing elements while remaining consistentwith an embodiment. This node may be a node that implements the SMSFfunctionality described herein.

The processor 32 may be a general purpose processor, a special purposeprocessor, a conventional processor, a digital signal processor (DSP), aplurality of microprocessors, one or more microprocessors in associationwith a DSP core, a controller, a microcontroller, Application SpecificIntegrated Circuits (ASICs), Field Programmable Gate Array (FPGAs)circuits, any other type of integrated circuit (TC), a state machine,and the like. In general, the processor 32 may executecomputer-executable instructions stored in the memory (e.g., memory 44and/or memory 46) of the node in order to perform the various requiredfunctions of the node. For example, the processor 32 may perform signalcoding, data processing, power control, input/output processing, and/orany other functionality that enables the M2M node 30 to operate in awireless or wired environment. The processor 32 may runapplication-layer programs (e.g., browsers) and/or radio access-layer(RAN) programs and/or other communications programs. The processor 32may also perform security operations such as authentication, securitykey agreement, and/or cryptographic operations, such as at theaccess-layer and/or application layer for example.

As shown in FIG. 15C, the processor 32 is coupled to its communicationcircuitry (e.g., transceiver 34 and transmit/receive element 36). Theprocessor 32, through the execution of computer executable instructions,may control the communication circuitry in order to cause the node 30 tocommunicate with other nodes via the network to which it is connected.In particular, the processor 32 may control the communication circuitryin order to perform the transmitting and receiving steps describedherein and in the claims. While FIG. 15C depicts the processor 32 andthe transceiver 34 as separate components, it will be appreciated thatthe processor 32 and the transceiver 34 may be integrated together in anelectronic package or chip.

The transmit/receive element 36 may be configured to transmit signalsto, or receive signals from, other M2M nodes, including M2M servers,gateways, device, and the like. For example, in an embodiment, thetransmit/receive element 36 may be an antenna configured to transmitand/or receive RF signals. The transmit/receive element 36 may supportvarious networks and air interfaces, such as WLAN, WPAN, cellular, andthe like. In an embodiment, the transmit/receive element 36 may be anemitter/detector configured to transmit and/or receive IR, UV, orvisible light signals, for example. In yet another embodiment, thetransmit/receive element 36 may be configured to transmit and receiveboth RF and light signals. It will be appreciated that thetransmit/receive element 36 may be configured to transmit and/or receiveany combination of wireless or wired signals.

In addition, although the transmit/receive element 36 is depicted inFIG. 15C as a single element, the M2M node 30 may include any number oftransmit/receive elements 36. More specifically, the M2M node 30 mayemploy MTMO technology. Thus, in an embodiment, the M2M node 30 mayinclude two or more transmit/receive elements 36 (e.g., multipleantennas) for transmitting and receiving wireless signals.

The transceiver 34 may be configured to modulate the signals that are tobe transmitted by the transmit/receive element 36 and to demodulate thesignals that are received by the transmit/receive element 36. As notedabove, the M2M node 30 may have multi-mode capabilities. Thus, thetransceiver 34 may include multiple transceivers for enabling the M2Mnode 30 to communicate via multiple RATS, such as UTRA and IEEE 802.11,for example.

The processor 32 may access information from, and store data in, anytype of suitable memory, such as the non-removable memory 44 and/or theremovable memory 46. For example, the processor 32 may store sessioncontext in its memory, as described above. The non-removable memory 44may include random-access memory (RAM), read-only memory (ROM), a harddisk, or any other type of memory storage device. The removable memory46 may include a subscriber identity module (SIM) card, a memory stick,a secure digital (SD) memory card, and the like. In other embodiments,the processor 32 may access information from, and store data in, memorythat is not physically located on the M2M node 30, such as on a serveror a home computer. The processor 32 may be configured to controllighting patterns, images, or colors on the display or indicators 42 toreflect the status of an M2M service layer session migration or sharingor to obtain input from a user or display information to a user aboutthe node's session migration or sharing capabilities or settings. Inanother example, the display may show information with regard to asession state. The current disclosure defines a RESTful user/applicationAPI in the oneM2M embodiment. A graphical user interface, which may beshown on the display, may be layered on top of the API to allow a userto interactively establish and manage an E2E session, or the migrationor sharing thereof, via the underlying service layer sessionfunctionality described herein.

The processor 32 may receive power from the power source 48, and may beconfigured to distribute and/or control the power to the othercomponents in the M2M node 30. The power source 48 may be any suitabledevice for powering the M2M node 30. For example, the power source 48may include one or more dry cell batteries (e.g., nickel-cadmium (NiCd),nickel-zinc (NiZn), nickel metal hydride (NiMH), lithium-ion (Li-ion),etc.), solar cells, fuel cells, and the like.

The processor 32 may also be coupled to the GPS chipset 50, which isconfigured to provide location information (e.g., longitude andlatitude) regarding the current location of the M2M node 30. It will beappreciated that the M2M node 30 may acquire location information by wayof any suitable location-determination method while remaining consistentwith an embodiment.

The processor 32 may further be coupled to other peripherals 52, whichmay include one or more software and/or hardware modules that provideadditional features, functionality and/or wired or wirelessconnectivity. For example, the peripherals 52 may include anaccelerometer, an e-compass, a satellite transceiver, a sensor, adigital camera (for photographs or video), a universal serial bus (USB)port, a vibration device, a television transceiver, a hands freeheadset, a Bluetooth® module, a frequency modulated (FM) radio unit, adigital music player, a media player, a video game player module, anInternet browser, and the like.

FIG. 15D is a block diagram of an exemplary computing system 90 whichmay also be used to implement one or more nodes of an M2M network, suchas an M2M server, gateway, device, or other node. Computing system 90may comprise a computer or server and may be controlled primarily bycomputer readable instructions, which may be in the form of software,wherever, or by whatever means such software is stored or accessed.Computing system 90 can execute or include logical entities such asexternal services 606, logical entities for sensor 602, M2M servicelayer 604, application 608, CSE 806, web service 804 and 1312, oneM2Mservice object provisioning tool 802, Service Access Enablement 902,Service Component Service Access Enablement 1202, MQTT client sensor1316, Service Object MQTT extension 1306, MQTT broker 1302, topicdirectory MQTT extension 1310, MQTT client application 1318, and serviceobject provisioning tool 1314 as well as logical entities to produceinterfaces such as interfaces 1402, 1404 and 1406. Computing system 90can be an M2M device, user equipment, gateway, UE/GW or any other nodesincluding nodes of the mobile care network, service layer networkapplication provider, terminal device 18 or an M2M gateway device 14 forexample. Such computer readable instructions may be executed within aprocessor, such as central processing unit (CPU) 91, to cause computingsystem 90 to do work. In many known workstations, servers, and personalcomputers, central processing unit 91 is implemented by a single-chipCPU called a microprocessor. In other machines, the central processingunit 91 may comprise multiple processors. Coprocessor 81 is an optionalprocessor, distinct from main CPU 91, that performs additional functionsor assists CPU 91. CPU 91 and/or coprocessor 81 may receive, generate,and process data related to the disclosed systems and methods for E2EM2M service layer sessions, such as receiving session credentials orauthenticating based on session credentials.

In operation, CPU 91 fetches, decodes, and executes instructions, andtransfers information to and from other resources via the computer'smain data-transfer path, system bus 80. Such a system bus connects thecomponents in computing system 90 and defines the medium for dataexchange. System bus 80 typically includes data lines for sending data,address lines for sending addresses, and control lines for sendinginterrupts and for operating the system bus. An example of such a systembus 80 is the PCT (Peripheral Component Interconnect) bus.

Memories coupled to system bus 80 include random access memory (RAM) 82and read only memory (ROM) 93. Such memories include circuitry thatallows information to be stored and retrieved. ROMs 93 generally containstored data that cannot easily be modified. Data stored in RAM 82 can beread or changed by CPU 91 or other hardware devices. Access to RAM 82and/or ROM 93 may be controlled by memory controller 92. Memorycontroller 92 may provide an address translation function thattranslates virtual addresses into physical addresses as instructions areexecuted. Memory controller 92 may also provide a memory protectionfunction that isolates processes within the system and isolates systemprocesses from user processes. Thus, a program running in a first modecan access only memory mapped by its own process virtual address space;it cannot access memory within another process's virtual address spaceunless memory sharing between the processes has been set up.

In addition, computing system 90 may contain peripherals controller 83responsible for communicating instructions from CPU 91 to peripherals,such as printer 94, keyboard 84, mouse 95, and disk drive 85.

Display 86, which is controlled by display controller 96, is used todisplay visual output generated by computing system 90. Such visualoutput may include text, graphics, animated graphics, and video. Display86 may be implemented with a CRT-based video display, an LCD-basedflat-panel display, gas plasma-based flat-panel display, or atouch-panel. Display controller 96 includes electronic componentsrequired to generate a video signal that is sent to display 86.

Further, computing system 90 may contain communication circuitry, suchas for example a network adaptor 97, that may be used to connectcomputing system 90 to an external communications network, such asnetwork 12 of FIG. 15A and FIG. 15B, to enable the computing system 90to communicate with other nodes of the network.

It is understood that any or all of the systems, methods, and processesdescribed herein may be embodied in the form of computer executableinstructions (i.e., program code) stored on a computer-readable storagemedium which instructions, when executed by a machine, such as a node ofan M2M network, including for example an M2M server, gateway, device orthe like, perform and/or implement the systems, methods and processesdescribed herein. Specifically, any of the steps, operations orfunctions described above, including the operations of the gateway, UE,UE/GW, or any of the nodes of the mobile core network, service layer ornetwork application provider, may be implemented in the form of suchcomputer executable instructions. Logical entities such as externalservices 606, logical entities for sensor 602, M2M service layer 604,application 608, CSE 806, web service 804 and 1312, oneM2M serviceobject provisioning tool 802, Service Access Enablement 902, ServiceComponent Service Access Enablement 1202, MQTT client sensor 1316,Service Object MQTT extension 1306, MQTT broker 1302, topic directoryMQTT extension 1310, MQTT client application 1318, and service objectprovisioning tool 1314 as well as logical entities to produce interfacessuch as interfaces 1402, 1404 and 1406 may be embodied in the form ofthe computer executable instructions stored on a computer-readablestorage medium. Computer readable storage media include both volatileand nonvolatile, removable and non-removable media implemented in anynon-transitory (i.e., tangible or physical) method or technology forstorage of information, but such computer readable storage media do notincludes signals. Computer readable storage media include, but are notlimited to, RAM, ROM, EEPROM, flash memory or other memory technology,CD-ROM, digital versatile disks (DVD) or other optical disk storage,magnetic cassettes, magnetic tape, magnetic disk storage or othermagnetic storage devices, or any other tangible or physical medium whichcan be used to store the desired information and which can be accessedby a computer.

In describing preferred embodiments of the subject matter of the presentdisclosure, as illustrated in the Figures, specific terminology isemployed for the sake of clarity. The claimed subject matter, however,is not intended to be limited to the specific terminology so selected,and it is to be understood that each specific element includes alltechnical equivalents that operate in a similar manner to accomplish asimilar purpose.

This written description uses examples to disclose the invention,including the best mode, and also to enable any person skilled in theart to practice the invention, including making and using any devices orsystems and performing any incorporated methods. The patentable scope ofthe invention is defined by the claims, and may include other examplesthat occur to those skilled in the art. Such other examples are intendedto be within the scope of the claims if they have elements that do notdiffer from the literal language of the claims, or if they includeequivalent elements with insubstantial differences from the literallanguage of the claims.

What is claimed:
 1. A node comprising a processor and a memory, the nodefurther including computer-executable instructions stored in the memoryof the node which, when executed by the processor of the node, cause thenode to: create a resource within a service of the node, wherein theservice supports service capabilities through a set of ApplicationProgramming Interfaces (APIs) and wherein the resource represents anexternal service outside of the service and determines a mapping of oneor more parameters of the resource to an Application ProgrammingInterface (API) associated with the external service; receive, from anapplication and based on a protocol associated with the service, a firstrequest associated with the resource; and send, to the external servicevia the API of the external service, one or more second requests, theone or more second requests being generated from the first request basedon the mapping, wherein the external service is provided to theapplication via the resource so that requests associated with theapplication can be communicated via the service.
 2. The node of claim 1,wherein the service is provided as a middleware service in a servicelayer located on top of network protocol stacks for IoT services.
 3. Thenode of claim 2, wherein the service layer is defined according toETSI/oneM2M standards.
 4. The node of claim 1, wherein the resource is auniquely addressable element in a Resource Oriented Architecture (ROA)having a representation that can be manipulated via RESTful methods. 5.The node of claim 1, wherein the resource is accessed by the applicationvia one or more protocols of the service.
 6. The node of claim 1,wherein the node proxies data to the external service from the servicefor the application.
 7. The node of claim 1, wherein the node receivesresults from the external service at the service and makes the resultsavailable to the application via the service resource.
 8. The node ofclaim 1, wherein the node allows discovery of external services at theservice.
 9. The node of claim 1, wherein the API comprises inputparameters and output parameters.
 10. The node of claim 9, wherein theAPI further comprises access credentials.
 11. A method comprising:creating a resource within a service of a node, wherein the servicesupports service capabilities through a set of Application ProgrammingInterfaces (APIs) and wherein the resource represents an externalservice outside of the service and determines a mapping of one or moreparameters of the resource to an Application Programming Interface (API)associated with the external service, the API comprises inputparameters, output parameters and access credentials; receiving, from anapplication and based on a protocol associated with the service, a firstrequest associated with the resource; and sending, to the externalservice via the API of the external service, one or more secondrequests, the one or more second requests being generated from the firstrequest based on the mapping, wherein the external service is providedto the application via the resource so that requests associated with theapplication can be communicated via the service.
 12. The method of claim10, wherein the service is provided as a middleware service in a servicelayer located on top of network protocol stacks for IoT services. 13.The method of claim 12, wherein the service layer is defined accordingto ETSI/oneM2M standards.
 14. The method of claim 11, wherein theresource is a uniquely addressable element in a Resource OrientedArchitecture (ROA) having representation that can be manipulated viaRESTful methods.
 15. The method of claim 11, wherein the resource isaccessed by the application via one or more protocols of the service.16. The method of claim 11, further comprising: proxying data to theexternal service from the service for the application.
 17. The method ofclaim 11, further comprising: receiving results from the externalservice at the service; and making the results available to theapplication via the resource.
 18. The method of claim 11, furthercomprising: allowing discovery of external services at the service. 19.The method of claim 11, wherein the API comprises input parameters andoutput parameters.
 20. The method of claim 19, wherein the API furthercomprises access credentials.